FraudNews
04-03-2011, 11:31 AM
A malware capable of infecting websites through a mechanism that is technically termed as "SQL Injections" has been identified by Websense, who have also named the offending piece of software as "Lizamoon".
According to Websense Security Labs, in a report published on eWeek recently, over half-a-million websites are estimated to be infected by Lizamoon. Although Websense has detected similar malwares in the past, the spreading of Lizamoon had been a significant concern and prompted a warning for unsuspecting online users who may become easy victims. Websense cautions that Lizamoon eventually tries to scam users into buying a software.
The Lizamoon typically gives fake alert messages warning users of security risks and infections, tricking them into buying a malware. Once downloaded and installed, the “purchased” malware then becomes a potential gateway for hackers to compromise the system further. In effect, this indicates a double blow for victims as they not only lose money by buying something that they don't need in the first place, but also run the more serious risk of exposing their system to hackers.
Technically, the “SQL Injection attacks” that are inherent to this malware refers to the insertion of a line of malicious code into websites that have a database attached. As a result, when users visit the infected website, they are redirected to a malicious site that is likely to be a sales front for selling malware, promoted as a security software.
Coping with a malware such as Lizamoon is not that difficult for experienced users. Users can avoid Lizamoon by being wary of fake screens that may pop-up masquerading as genuine security alert messages. By being familiar with the look and feel of warnings screens that typically result from legitimate anti-virus and internet security software would go a long in way in distinguishing any bogus warnings from the real alerts. Users are also advised not to download and install any software unless they are sure of their legitimacy.
It is also important that users have an up-to-date anti-virus, anti-spyware, or a complete internet security software, capable of detecting and cleaning malware. This would be, by far, the most effective step that one could take in order to thwart Lizamoon.
According to Websense Security Labs, in a report published on eWeek recently, over half-a-million websites are estimated to be infected by Lizamoon. Although Websense has detected similar malwares in the past, the spreading of Lizamoon had been a significant concern and prompted a warning for unsuspecting online users who may become easy victims. Websense cautions that Lizamoon eventually tries to scam users into buying a software.
The Lizamoon typically gives fake alert messages warning users of security risks and infections, tricking them into buying a malware. Once downloaded and installed, the “purchased” malware then becomes a potential gateway for hackers to compromise the system further. In effect, this indicates a double blow for victims as they not only lose money by buying something that they don't need in the first place, but also run the more serious risk of exposing their system to hackers.
Technically, the “SQL Injection attacks” that are inherent to this malware refers to the insertion of a line of malicious code into websites that have a database attached. As a result, when users visit the infected website, they are redirected to a malicious site that is likely to be a sales front for selling malware, promoted as a security software.
Coping with a malware such as Lizamoon is not that difficult for experienced users. Users can avoid Lizamoon by being wary of fake screens that may pop-up masquerading as genuine security alert messages. By being familiar with the look and feel of warnings screens that typically result from legitimate anti-virus and internet security software would go a long in way in distinguishing any bogus warnings from the real alerts. Users are also advised not to download and install any software unless they are sure of their legitimacy.
It is also important that users have an up-to-date anti-virus, anti-spyware, or a complete internet security software, capable of detecting and cleaning malware. This would be, by far, the most effective step that one could take in order to thwart Lizamoon.